sameSite cookie

src/lib/components/sidebar/Sidebar.svelte

@@ -75,7 +75,7 @@
   {#if user?.picture}
     <footer class="text-white text-center text-base pb-8 px-8 flex items-center justify-between gap-4">
       <div class="flex items-center justify-start gap-4">
-        <img src={user.picture} alt="User avatar" class="w-10 h-10 rounded-full border-2 border-white inline-block" />
+        <img src={user?.picture?.startsWith('http') ? user?.picture : `https://huggingface.co${user?.picture}`} alt="User avatar" class="w-10 h-10 rounded-full border-2 border-white inline-block" />
         <div class="w-full text-left">
           <p class="text-lg font-semibold">
             {user.name}

src/routes/login/callback/+page.svelte

@@ -5,7 +5,7 @@
   export let data;
 
   if (data?.token) {
-    cookies.set('hf_access_token', data.token, { expires: 7 });
+    cookies.set('hf_access_token', data.token, { expires: 7, sameSite: 'none', secure: true });
     if (browser) {
       window.location.href = '/';
     }